CN114024995A - Internet of things terminal firmware safety analysis system - Google Patents
Internet of things terminal firmware safety analysis system Download PDFInfo
- Publication number
- CN114024995A CN114024995A CN202111405399.8A CN202111405399A CN114024995A CN 114024995 A CN114024995 A CN 114024995A CN 202111405399 A CN202111405399 A CN 202111405399A CN 114024995 A CN114024995 A CN 114024995A
- Authority
- CN
- China
- Prior art keywords
- internet
- module
- things
- firmware
- security
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000004458 analytical method Methods 0.000 title claims abstract description 163
- 238000011156 evaluation Methods 0.000 claims abstract description 48
- 238000001514 detection method Methods 0.000 claims abstract description 45
- 238000012545 processing Methods 0.000 claims abstract description 39
- 238000004891 communication Methods 0.000 claims abstract description 17
- 238000007726 management method Methods 0.000 claims description 30
- 241000700605 Viruses Species 0.000 claims description 10
- 238000013523 data management Methods 0.000 claims description 8
- 230000006978 adaptation Effects 0.000 claims description 7
- 238000010276 construction Methods 0.000 claims description 7
- 238000009434 installation Methods 0.000 claims description 7
- 238000000034 method Methods 0.000 claims description 7
- 230000008569 process Effects 0.000 claims description 4
- 238000004519 manufacturing process Methods 0.000 claims description 3
- 238000012544 monitoring process Methods 0.000 claims description 3
- 238000007619 statistical method Methods 0.000 claims description 3
- 238000007405 data analysis Methods 0.000 abstract description 3
- 238000010586 diagram Methods 0.000 description 6
- 238000005516 engineering process Methods 0.000 description 3
- 230000000694 effects Effects 0.000 description 2
- 230000006872 improvement Effects 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000005540 biological transmission Effects 0.000 description 1
- 230000008859 change Effects 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 238000012423 maintenance Methods 0.000 description 1
- 230000006855 networking Effects 0.000 description 1
- 238000012360 testing method Methods 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/12—Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks
- H04L67/125—Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks involving control of end-device applications over a network
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F8/00—Arrangements for software engineering
- G06F8/60—Software deployment
- G06F8/65—Updates
- G06F8/654—Updates using techniques specially adapted for alterable solid state memories, e.g. for EEPROM or flash memories
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F8/00—Arrangements for software engineering
- G06F8/70—Software maintenance or management
- G06F8/71—Version control; Configuration management
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/08—Configuration management of networks or network elements
- H04L41/0803—Configuration setting
- H04L41/0813—Configuration setting characterised by the conditions triggering a change of settings
- H04L41/082—Configuration setting characterised by the conditions triggering a change of settings the condition being updates or upgrades of network functionality
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/145—Countermeasures against malicious traffic the attack involving the propagation of malware through the network, e.g. viruses, trojans or worms
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3236—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions
- H04L9/3239—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions involving non-keyed hash functions, e.g. modification detection codes [MDCs], MD5, SHA or RIPEMD
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Theoretical Computer Science (AREA)
- Software Systems (AREA)
- Computing Systems (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Health & Medical Sciences (AREA)
- General Health & Medical Sciences (AREA)
- Computer Hardware Design (AREA)
- Medical Informatics (AREA)
- Virology (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention relates to the field of information security of the Internet of things, in particular to a security analysis system for terminal firmware of the Internet of things, which comprises a security analysis processor, a firmware upgrade evaluation module, a network security detection module, an information encryption processing module, a gateway protocol synchronization module, a block chain module and a system iteration analysis module; the security analysis processor is in communication connection with the firmware upgrading evaluation module, the network security detection module, the information encryption processing module, the gateway protocol synchronization module, the block chain identification module and the system iteration analysis module. The security analysis processor is connected with the Internet of things terminal firmware in an analysis mode, and the Internet of things terminal firmware is comprehensively evaluated, analyzed, detected and managed through the firmware upgrading evaluation module, the network security detection module, the information encryption processing module, the gateway protocol synchronization module, the block chain module and the system iteration analysis module, so that the security of the Internet of things terminal firmware is improved, and the comprehensiveness of data analysis of the Internet of things terminal firmware is improved.
Description
Technical Field
The invention relates to the field of information security of the Internet of things, in particular to a security analysis system for terminal firmware of the Internet of things.
Background
With the rapid development of the internet of things technology, the number of internet of things devices is also increasing, and generally speaking, before one internet of things device is put into market for use, the device needs to undergo detection as many as possible to ensure the stable and reliable functions of the device. However, with iterative advancement of the internet of things technology and continuous change of user requirements, the online time and the test period of the internet of things device are both greatly reduced, so how to ensure the safety and reliability of the terminal firmware of the internet of things device which is already put on the market becomes a problem to be solved urgently.
The invention with the publication number of CN111212121B discloses an aerial firmware upgrading method and system for Internet of things equipment, wherein an Internet of things equipment terminal is in network communication with an upgrading server through a relay networking unit, the upgrading server is used for realizing access control management of large-scale Internet of things equipment terminals and generation and issuing of firmware packages, and a private cloud database is used for realizing multi-version firmware package storage. The method can realize rapid iterative upgrade and maintenance of the equipment of the Internet of things and unified management of the firmware version of the equipment, can effectively solve the problems of flow and resource occupation in the upgrade process of the equipment of the Internet of things, realizes an upgrade solution scheme with various upgrade modes, breakpoint continuous transmission and firmware version rollback, improves upgrade success rate and improves user experience.
However, the above prior art has the following drawbacks: the system can only ensure that the firmware version of the Internet of things equipment is updated in time, the information safety of the Internet of things terminal firmware cannot be protected, the information safety risk possibly encountered by the Internet of things terminal firmware in a new network environment cannot be pre-judged and protected, the safety performance is low, the information protection performance is poor, the using effect is poor, and the improvement is needed.
Disclosure of Invention
The invention provides a security analysis system for terminal firmware of the Internet of things, aiming at the technical problems in the background technology.
The technical scheme of the invention is as follows: an Internet of things terminal firmware security analysis system comprises a security analysis processor, a firmware upgrade evaluation module, a network security detection module, an information encryption processing module, a gateway protocol synchronization module, a block chain module and a system iteration analysis module; the security analysis processor is in communication connection with the firmware upgrading evaluation module, the network security detection module, the information encryption processing module, the gateway protocol synchronization module, the block chain identification module and the system iteration analysis module; the firmware upgrading evaluation module comprises a terminal architecture analysis submodule, a firmware upgrading installation submodule and an external link information safety evaluation module; the network security detection module comprises a virus scanning sub-module, a network anomaly analysis sub-module, a network patrol sub-module and an identity identification sub-module; the information encryption processing module comprises a key generation submodule, a key decryption submodule and an encryption construction submodule; the gateway protocol synchronization module comprises a protocol decoding submodule, a protocol adaptation submodule and a protocol management submodule; the protocol type supported by the gateway protocol synchronization module comprises at least one of REST, XMPP, AMQP, DDS, MQTT, Co-AP and JMS; the block chain identification module comprises a registration management submodule, an authority management submodule, a block chain data management submodule, an information registration submodule and an information source tracing analysis submodule; the system iteration analysis module comprises a firmware upgrading submodule, an information security self-adaption submodule and an iteration encryption submodule;
the firmware upgrading evaluation module is used for upgrading and maintaining the Internet of things terminal firmware system and detecting and evaluating the safety of external link information in the upgrading process; the network security detection module carries out conventional information security monitoring on the terminal firmware of the Internet of things; the information encryption processing module is used for generating and decoding a secret key for an uploading information channel and a downloading information channel of the Internet of things, so that the information security of the firmware system is improved; the gateway protocol synchronization module updates and decodes a gateway protocol of the Internet of things terminal firmware system, so that the connection stability between the Internet of things and the Internet is guaranteed; the block chain identification module provides traceability performance for the terminal firmware of the Internet of things, and ensures the information security of the terminal firmware of the Internet of things; the system iteration analysis module is used for carrying out self-adaption on different types of terminal firmware of the Internet of things, so that the targeted individualized analysis capability of the security analysis system on the terminal firmware of the Internet of things is improved.
Preferably, in the firmware upgrade evaluation module, the terminal architecture parsing submodule parses the system architecture of the security analysis processor; the firmware upgrading installation submodule downloads and installs the latest system of the safety analysis processor updated by the central server; and the external link information safety evaluation module analyzes and evaluates the information safety of the central server and transmits the detection data back to the safety analysis processor, so that the information safety when the terminal firmware system is upgraded is ensured.
Preferably, in the network security detection module, the virus scanning submodule scans and analyzes the network virus; the network anomaly analysis submodule monitors uploading and downloading inside the local area network and transmits the anomaly data back to the security analysis processor; the network patrol submodule detects the network condition in real time, so that the safe operation of the Internet of things is ensured; and the identity recognition sub-module records the operation of the terminal firmware of the Internet of things and filters and screens the operation channel and the operation identity.
Preferably, in the information encryption processing module, the key generation submodule is used for generating a network key; the key decryption submodule is used for verifying and comparing whether the decryption key is consistent with the encryption key; the encryption construction sub-module is in communication connection with the key production sub-module and the key decryption sub-module, so that information receiving and information sending of the security analysis processor are encrypted, and uniqueness of a security analysis path of the Internet of things terminal firmware is improved.
Preferably, in the gateway protocol synchronization module, the protocol decoding submodule identifies and analyzes the gateway protocol; the protocol adaptation submodule identifies the Internet of things terminal firmware system and the gateway protocol system, so that the Internet of things terminal firmware is accessed to the Internet; and the protocol management submodule detects and analyzes the gateway connection between the terminal firmware of the Internet of things and the Internet.
Preferably, in the block chain identification module, the registration management submodule registers the identity of the terminal firmware of the internet of things; the authority management submodule carries out authority management on the identity of the Internet of things terminal firmware; the block chain data management submodule carries out statistical analysis on block chain information of the Internet of things terminal firmware; the information registration submodule registers the identity of the terminal firmware of the Internet of things into the block chain network architecture; and the information tracing analysis submodule traces the source of the information received by the Internet of things terminal firmware.
Preferably, in the system iteration analysis module, the firmware upgrading submodule analyzes and manages the continuously upgraded internet of things terminal firmware; the information security self-adaptive sub-module is in communication connection with the security analysis processor and keeps a system information security analysis interval of the Internet of things terminal firmware in a latest state; and the iterative encryption submodule encrypts the information security of the terminal firmware of the Internet of things.
Preferably, the operation steps of the system are as follows:
s1, the security analysis processor is installed in the terminal of the Internet of things; the firmware upgrading evaluation module evaluates the terminal firmware of the Internet of things and ensures that the operating system of the terminal firmware is matched with the operating system of the safety analysis processor;
s2, the network security detection module detects the network security of the terminal firmware of the Internet of things and transmits data back to the security analysis processor in real time;
s3, the information encryption processing module encrypts the firmware information and the external link information in the terminal of the Internet of things, so that the safety of information analysis is improved;
s4, the gateway protocol synchronization module matches and updates the gateway protocol of the terminal of the Internet of things and the Internet connected with the terminal of the Internet of things, so as to ensure the stable operation of the gateway;
s5, the block chain module carries out block chain input on the firmware information of the Internet of things terminal, so that the traceability of the information is improved when the security analysis architecture is in the block chain environment;
and S6, the system iteration analysis module manages and analyzes the multi-level security analysis data, collates and counts the multi-generation security analysis reports, transmits the safety analysis reports back to the security analysis processor, and ensures the timeliness of the security information of the Internet of things firmware.
Compared with the prior art, the technical scheme of the invention has the following beneficial technical effects: the method comprises the steps that a security analysis processor, a firmware upgrading evaluation module, a network security detection module, an information encryption processing module, a gateway protocol synchronization module, a block chain module and a system iteration analysis module are arranged; the security analysis processor is connected with the Internet of things terminal firmware in an analysis mode, and comprehensive evaluation, analysis and detection management are carried out on the Internet of things terminal firmware through the firmware upgrading evaluation module, the network security detection module, the information encryption processing module, the gateway protocol synchronization module, the block chain module and the system iteration analysis module, so that the security of the Internet of things terminal firmware is improved, and the comprehensiveness of data analysis of the Internet of things terminal firmware is improved.
Drawings
Fig. 1 is a diagram of a security analysis processor and its module connections according to an embodiment of the present invention.
Fig. 2 is a connection diagram of a firmware upgrade evaluation module and sub-modules thereof according to an embodiment of the present invention.
Fig. 3 is a connection diagram of a network security detection module and sub-modules thereof according to an embodiment of the invention.
Fig. 4 is a connection diagram of an information encryption processing module and sub-modules thereof according to an embodiment of the present invention.
Fig. 5 is a connection diagram of a gateway protocol synchronization module and sub-modules thereof according to an embodiment of the present invention.
Fig. 6 is a block chain module and its sub-modules according to an embodiment of the present invention.
Fig. 7 is a connection diagram of the system iteration analysis module and its sub-modules according to an embodiment of the present invention.
Detailed Description
Example one
As shown in fig. 1, the system for analyzing the security of the terminal firmware of the internet of things provided by the present invention includes a security analysis processor, a firmware upgrade evaluation module, a network security detection module, an information encryption processing module, a gateway protocol synchronization module, a block chain module, and a system iteration analysis module; the security analysis processor is in communication connection with the firmware upgrading evaluation module, the network security detection module, the information encryption processing module, the gateway protocol synchronization module, the block chain identification module and the system iteration analysis module.
The firmware upgrading evaluation module comprises a terminal architecture analysis submodule, a firmware upgrading installation submodule and an external link information safety evaluation module. The network security detection module comprises a virus scanning sub-module, a network anomaly analysis sub-module, a network patrol sub-module and an identity identification sub-module. The information encryption processing module comprises a key generation submodule, a key decryption submodule and an encryption construction submodule. The gateway protocol synchronization module comprises a protocol decoding submodule, a protocol adaptation submodule and a protocol management submodule; the protocol type supported by the gateway protocol synchronization module comprises at least one of REST, XMPP, AMQP, DDS, MQTT, Co-AP and JMS. The block chain identification module comprises a registration management submodule, an authority management submodule, a block chain data management submodule, an information registration submodule and an information source tracing analysis submodule. The system iteration analysis module comprises a firmware upgrading submodule, an information security self-adaption submodule and an iteration encryption submodule.
In this embodiment, a security analysis processor, a firmware upgrade evaluation module, a network security detection module, an information encryption processing module, a gateway protocol synchronization module, a block chain module, and a system iteration analysis module are provided; the security analysis processor is connected with the Internet of things terminal firmware in an analysis mode, and comprehensive evaluation, analysis and detection management are carried out on the Internet of things terminal firmware through the firmware upgrading evaluation module, the network security detection module, the information encryption processing module, the gateway protocol synchronization module, the block chain module and the system iteration analysis module, so that the security of the Internet of things terminal firmware is improved, and the comprehensiveness of data analysis of the Internet of things terminal firmware is improved.
Example two
As shown in fig. 1-2, the system for analyzing the security of the terminal firmware of the internet of things provided by the present invention includes a security analysis processor, a firmware upgrade evaluation module, a network security detection module, an information encryption processing module, a gateway protocol synchronization module, a block chain module, and a system iteration analysis module; the security analysis processor is in communication connection with the firmware upgrading evaluation module, the network security detection module, the information encryption processing module, the gateway protocol synchronization module, the block chain identification module and the system iteration analysis module.
The firmware upgrading evaluation module comprises a terminal architecture analysis submodule, a firmware upgrading installation submodule and an external link information safety evaluation module.
Further, in the firmware upgrading evaluation module, the terminal architecture analysis submodule analyzes the system architecture of the security analysis processor; the firmware upgrading installation submodule downloads and installs the latest system of the safety analysis processor updated by the central server; and the external link information safety evaluation module analyzes and evaluates the information safety of the central server and transmits the detection data back to the safety analysis processor, so that the information safety when the terminal firmware system is upgraded is ensured.
In this embodiment, the firmware upgrade evaluation module is configured to upgrade and maintain the internet of things terminal firmware system, and detect and evaluate the external link information security during the upgrade process.
EXAMPLE III
As shown in fig. 1 and 3, the terminal firmware security analysis system for the internet of things provided by the invention comprises a security analysis processor, a firmware upgrade evaluation module, a network security detection module, an information encryption processing module, a gateway protocol synchronization module, a block chain module and a system iteration analysis module; the security analysis processor is in communication connection with the firmware upgrading evaluation module, the network security detection module, the information encryption processing module, the gateway protocol synchronization module, the block chain identification module and the system iteration analysis module.
The network security detection module comprises a virus scanning sub-module, a network anomaly analysis sub-module, a network patrol sub-module and an identity identification sub-module.
Furthermore, in the network security detection module, a virus scanning submodule scans and analyzes network viruses; the network anomaly analysis submodule monitors uploading and downloading inside the local area network and transmits the anomaly data back to the security analysis processor; the network patrol submodule detects the network condition in real time, so that the safe operation of the Internet of things is ensured; and the identity recognition sub-module records the operation of the terminal firmware of the Internet of things and filters and screens the operation channel and the operation identity.
In this embodiment, the network security detection module performs conventional information security monitoring on the terminal firmware of the internet of things
Example four
As shown in fig. 1 and 4, the terminal firmware security analysis system for the internet of things provided by the invention comprises a security analysis processor, a firmware upgrade evaluation module, a network security detection module, an information encryption processing module, a gateway protocol synchronization module, a block chain module and a system iteration analysis module; the security analysis processor is in communication connection with the firmware upgrading evaluation module, the network security detection module, the information encryption processing module, the gateway protocol synchronization module, the block chain identification module and the system iteration analysis module.
The information encryption processing module comprises a key generation submodule, a key decryption submodule and an encryption construction submodule.
Further, in the information encryption processing module, the key generation submodule is used for generating a network key; the key decryption submodule is used for verifying and comparing whether the decryption key is consistent with the encryption key; the encryption construction sub-module is in communication connection with the key production sub-module and the key decryption sub-module, so that information receiving and information sending of the security analysis processor are encrypted, and uniqueness of a security analysis path of the Internet of things terminal firmware is improved.
In this embodiment, the information encryption processing module is configured to generate and decode a key for an upload information channel and a download information channel of the internet of things, so as to improve information security of the firmware system
EXAMPLE five
As shown in fig. 1 and 5, the system for analyzing the security of the terminal firmware of the internet of things provided by the invention comprises a security analysis processor, a firmware upgrade evaluation module, a network security detection module, an information encryption processing module, a gateway protocol synchronization module, a block chain module and a system iteration analysis module; the security analysis processor is in communication connection with the firmware upgrading evaluation module, the network security detection module, the information encryption processing module, the gateway protocol synchronization module, the block chain identification module and the system iteration analysis module.
The gateway protocol synchronization module comprises a protocol decoding submodule, a protocol adaptation submodule and a protocol management submodule; the protocol type supported by the gateway protocol synchronization module comprises at least one of REST, XMPP, AMQP, DDS, MQTT, Co-AP and JMS.
Further, in the gateway protocol synchronization module, a protocol decoding submodule identifies and analyzes a gateway protocol; the protocol adaptation submodule identifies the Internet of things terminal firmware system and the gateway protocol system, so that the Internet of things terminal firmware is accessed to the Internet; and the protocol management submodule detects and analyzes the gateway connection between the terminal firmware of the Internet of things and the Internet.
In this embodiment, the gateway protocol synchronization module updates and decodes the gateway protocol of the terminal firmware system of the internet of things, thereby ensuring the connection stability between the internet of things and the internet
EXAMPLE six
As shown in fig. 1 and 6, the terminal firmware security analysis system for the internet of things provided by the invention comprises a security analysis processor, a firmware upgrade evaluation module, a network security detection module, an information encryption processing module, a gateway protocol synchronization module, a block chain module and a system iteration analysis module; the security analysis processor is in communication connection with the firmware upgrading evaluation module, the network security detection module, the information encryption processing module, the gateway protocol synchronization module, the block chain identification module and the system iteration analysis module.
The block chain identification module comprises a registration management submodule, an authority management submodule, a block chain data management submodule, an information registration submodule and an information source tracing analysis submodule. The system iteration analysis module comprises a firmware upgrading submodule, an information security self-adaption submodule and an iteration encryption submodule.
Further, in the block chain identification module, the registration management submodule registers the identity of the terminal firmware of the internet of things; the authority management submodule carries out authority management on the identity of the Internet of things terminal firmware; the block chain data management submodule carries out statistical analysis on block chain information of the Internet of things terminal firmware; the information registration submodule registers the identity of the terminal firmware of the Internet of things into the block chain network architecture; and the information tracing analysis submodule traces the source of the information received by the Internet of things terminal firmware.
In this embodiment, the blockchain identification module provides traceability performance for the terminal firmware of the internet of things, so as to ensure information security of the terminal firmware of the internet of things
EXAMPLE seven
As shown in fig. 1 and 7, the terminal firmware security analysis system for the internet of things provided by the invention comprises a security analysis processor, a firmware upgrade evaluation module, a network security detection module, an information encryption processing module, a gateway protocol synchronization module, a block chain module and a system iteration analysis module; the security analysis processor is in communication connection with the firmware upgrading evaluation module, the network security detection module, the information encryption processing module, the gateway protocol synchronization module, the block chain identification module and the system iteration analysis module.
The block chain identification module comprises a registration management submodule, an authority management submodule, a block chain data management submodule, an information registration submodule and an information source tracing analysis submodule. The system iteration analysis module comprises a firmware upgrading submodule, an information security self-adaption submodule and an iteration encryption submodule.
Further, in the system iteration analysis module, a firmware upgrading submodule analyzes and manages the continuously upgraded Internet of things terminal firmware; the information security self-adaptive sub-module is in communication connection with the security analysis processor and keeps a system information security analysis interval of the Internet of things terminal firmware in a latest state; and the iterative encryption submodule encrypts the information security of the terminal firmware of the Internet of things.
In this embodiment, the system iterative analysis module is configured to adapt to different types of internet of things terminal firmware, so that the targeted personalized analysis capability of the security analysis system on different types of internet of things terminal firmware is improved.
The safety analysis system for the terminal firmware of the Internet of things comprises the following operation steps:
s1, the security analysis processor is installed in the terminal of the Internet of things; the firmware upgrading evaluation module evaluates the terminal firmware of the Internet of things and ensures that the operating system of the terminal firmware is matched with the operating system of the safety analysis processor;
s2, the network security detection module detects the network security of the terminal firmware of the Internet of things and transmits data back to the security analysis processor in real time;
s3, the information encryption processing module encrypts the firmware information and the external link information in the terminal of the Internet of things, so that the safety of information analysis is improved;
s4, the gateway protocol synchronization module matches and updates the gateway protocol of the terminal of the Internet of things and the Internet connected with the terminal of the Internet of things, so as to ensure the stable operation of the gateway;
s5, the block chain module carries out block chain input on the firmware information of the Internet of things terminal, so that the traceability of the information is improved when the security analysis architecture is in the block chain environment;
and S6, the system iteration analysis module manages and analyzes the multi-level security analysis data, collates and counts the multi-generation security analysis reports, transmits the safety analysis reports back to the security analysis processor, and ensures the timeliness of the security information of the Internet of things firmware.
It is to be understood that the above-described embodiments of the present invention are merely illustrative of or explaining the principles of the invention and are not to be construed as limiting the invention. Therefore, any modification, equivalent replacement, improvement and the like made without departing from the spirit and scope of the present invention should be included in the protection scope of the present invention. Further, it is intended that the appended claims cover all such variations and modifications as fall within the scope and boundaries of the appended claims or the equivalents of such scope and boundaries.
Claims (8)
1. The Internet of things terminal firmware security analysis system is characterized by comprising a security analysis processor, a firmware upgrade evaluation module, a network security detection module, an information encryption processing module, a gateway protocol synchronization module, a block chain module and a system iteration analysis module; the security analysis processor is in communication connection with the firmware upgrading evaluation module, the network security detection module, the information encryption processing module, the gateway protocol synchronization module, the block chain identification module and the system iteration analysis module;
the firmware upgrading evaluation module comprises a terminal architecture analysis submodule, a firmware upgrading installation submodule and an external link information safety evaluation module;
the network security detection module comprises a virus scanning sub-module, a network anomaly analysis sub-module, a network patrol sub-module and an identity identification sub-module;
the information encryption processing module comprises a key generation submodule, a key decryption submodule and an encryption construction submodule;
the gateway protocol synchronization module comprises a protocol decoding submodule, a protocol adaptation submodule and a protocol management submodule; the protocol type supported by the gateway protocol synchronization module comprises at least one of REST, XMPP, AMQP, DDS, MQTT, Co-AP and JMS;
the block chain identification module comprises a registration management submodule, an authority management submodule, a block chain data management submodule, an information registration submodule and an information source tracing analysis submodule;
the system iteration analysis module comprises a firmware upgrading submodule, an information security self-adaption submodule and an iteration encryption submodule;
the firmware upgrading evaluation module is used for upgrading and maintaining the Internet of things terminal firmware system and detecting and evaluating the safety of external link information in the upgrading process; the network security detection module carries out conventional information security monitoring on the terminal firmware of the Internet of things; the information encryption processing module is used for generating and decoding a secret key for an uploading information channel and a downloading information channel of the Internet of things, so that the information security of the firmware system is improved; the gateway protocol synchronization module updates and decodes a gateway protocol of the Internet of things terminal firmware system, so that the connection stability between the Internet of things and the Internet is guaranteed; the block chain identification module provides traceability performance for the terminal firmware of the Internet of things, and ensures the information security of the terminal firmware of the Internet of things; the system iteration analysis module is used for carrying out self-adaption on different types of terminal firmware of the Internet of things, so that the targeted individualized analysis capability of the security analysis system on the terminal firmware of the Internet of things is improved.
2. The internet of things terminal firmware security analysis system according to claim 1, wherein in the firmware upgrade evaluation module, the terminal architecture parsing submodule parses a system architecture of the security analysis processor; the firmware upgrading installation submodule downloads and installs the latest system of the safety analysis processor updated by the central server; and the external link information safety evaluation module analyzes and evaluates the information safety of the central server and transmits the detection data back to the safety analysis processor, so that the information safety when the terminal firmware system is upgraded is ensured.
3. The system for analyzing the security of the terminal firmware of the internet of things according to claim 1, wherein in the network security detection module, the virus scanning submodule scans and analyzes network viruses; the network anomaly analysis submodule monitors uploading and downloading inside the local area network and transmits the anomaly data back to the security analysis processor; the network patrol submodule detects the network condition in real time, so that the safe operation of the Internet of things is ensured; and the identity recognition sub-module records the operation of the terminal firmware of the Internet of things and filters and screens the operation channel and the operation identity.
4. The system for analyzing the security of the terminal firmware of the internet of things as claimed in claim 1, wherein in the information encryption processing module, the key generation submodule is used for generating a network key; the key decryption submodule is used for verifying and comparing whether the decryption key is consistent with the encryption key; the encryption construction sub-module is in communication connection with the key production sub-module and the key decryption sub-module, so that information receiving and information sending of the security analysis processor are encrypted, and uniqueness of a security analysis path of the Internet of things terminal firmware is improved.
5. The system for analyzing the security of the terminal firmware of the internet of things according to claim 1, wherein in the gateway protocol synchronization module, the protocol decoding submodule performs identification analysis on the gateway protocol; the protocol adaptation submodule identifies the Internet of things terminal firmware system and the gateway protocol system, so that the Internet of things terminal firmware is accessed to the Internet; and the protocol management submodule detects and analyzes the gateway connection between the terminal firmware of the Internet of things and the Internet.
6. The system for analyzing the security of the terminal firmware of the internet of things according to claim 1, wherein in the blockchain identification module, the registration management submodule registers the identity of the terminal firmware of the internet of things; the authority management submodule carries out authority management on the identity of the Internet of things terminal firmware; the block chain data management submodule carries out statistical analysis on block chain information of the Internet of things terminal firmware; the information registration submodule registers the identity of the terminal firmware of the Internet of things into the block chain network architecture; and the information tracing analysis submodule traces the source of the information received by the Internet of things terminal firmware.
7. The security analysis system for the terminal firmware of the internet of things according to claim 1, wherein in the system iteration analysis module, the firmware upgrading submodule analyzes and manages the terminal firmware of the internet of things which is continuously upgraded; the information security self-adaptive sub-module is in communication connection with the security analysis processor and keeps a system information security analysis interval of the Internet of things terminal firmware in a latest state; and the iterative encryption submodule encrypts the information security of the terminal firmware of the Internet of things.
8. The system for analyzing the security of the terminal firmware of the internet of things according to any one of claims 1 to 7, wherein the system is operated by the following steps:
s1, the security analysis processor is installed in the terminal of the Internet of things; the firmware upgrading evaluation module evaluates the terminal firmware of the Internet of things and ensures that the operating system of the terminal firmware is matched with the operating system of the safety analysis processor;
s2, the network security detection module detects the network security of the terminal firmware of the Internet of things and transmits data back to the security analysis processor in real time;
s3, the information encryption processing module encrypts the firmware information and the external link information in the terminal of the Internet of things, so that the safety of information analysis is improved;
s4, the gateway protocol synchronization module matches and updates the gateway protocol of the terminal of the Internet of things and the Internet connected with the terminal of the Internet of things, so as to ensure the stable operation of the gateway;
s5, the block chain module carries out block chain input on the firmware information of the Internet of things terminal, so that the traceability of the information is improved when the security analysis architecture is in the block chain environment;
and S6, the system iteration analysis module manages and analyzes the multi-level security analysis data, collates and counts the multi-generation security analysis reports, transmits the safety analysis reports back to the security analysis processor, and ensures the timeliness of the security information of the Internet of things firmware.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111405399.8A CN114024995A (en) | 2021-11-24 | 2021-11-24 | Internet of things terminal firmware safety analysis system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111405399.8A CN114024995A (en) | 2021-11-24 | 2021-11-24 | Internet of things terminal firmware safety analysis system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN114024995A true CN114024995A (en) | 2022-02-08 |
Family
ID=80066131
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202111405399.8A Pending CN114024995A (en) | 2021-11-24 | 2021-11-24 | Internet of things terminal firmware safety analysis system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN114024995A (en) |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| KR20170119054A (en) * | 2016-04-18 | 2017-10-26 | 이니텍(주) | End-to-End Security Platform of Internet of Things |
| CN111680295A (en) * | 2020-04-16 | 2020-09-18 | 国网浙江省电力有限公司电力科学研究院 | Method for constructing security detection of firmware of Internet of things terminal equipment |
| CN112491788A (en) * | 2020-10-20 | 2021-03-12 | 北京泰豪智能工程有限公司 | Safe cloud agent service platform, implementation method and Internet of things system |
| CN112559005A (en) * | 2020-11-27 | 2021-03-26 | 南京南瑞信息通信科技有限公司 | Internet of things equipment firmware updating method and system based on block chain and distributed storage |
| CN112804212A (en) * | 2020-12-31 | 2021-05-14 | 上海磐御网络科技有限公司 | Information security assessment system |
| CN112804310A (en) * | 2020-12-31 | 2021-05-14 | 河南中盾云安信息科技有限公司 | Multi-chain intelligent security gateway for application of Internet of things and implementation method |
| CN113468522A (en) * | 2021-07-19 | 2021-10-01 | 泰安北航科技园信息科技有限公司 | Detection system for information security of vehicle-mounted OTA (over the air) upgrade server |
-
2021
- 2021-11-24 CN CN202111405399.8A patent/CN114024995A/en active Pending
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| KR20170119054A (en) * | 2016-04-18 | 2017-10-26 | 이니텍(주) | End-to-End Security Platform of Internet of Things |
| CN111680295A (en) * | 2020-04-16 | 2020-09-18 | 国网浙江省电力有限公司电力科学研究院 | Method for constructing security detection of firmware of Internet of things terminal equipment |
| CN112491788A (en) * | 2020-10-20 | 2021-03-12 | 北京泰豪智能工程有限公司 | Safe cloud agent service platform, implementation method and Internet of things system |
| CN112559005A (en) * | 2020-11-27 | 2021-03-26 | 南京南瑞信息通信科技有限公司 | Internet of things equipment firmware updating method and system based on block chain and distributed storage |
| CN112804212A (en) * | 2020-12-31 | 2021-05-14 | 上海磐御网络科技有限公司 | Information security assessment system |
| CN112804310A (en) * | 2020-12-31 | 2021-05-14 | 河南中盾云安信息科技有限公司 | Multi-chain intelligent security gateway for application of Internet of things and implementation method |
| CN113468522A (en) * | 2021-07-19 | 2021-10-01 | 泰安北航科技园信息科技有限公司 | Detection system for information security of vehicle-mounted OTA (over the air) upgrade server |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11271955B2 (en) | Platform and method for retroactive reclassification employing a cybersecurity-based global data store | |
| US20190207966A1 (en) | Platform and Method for Enhanced Cyber-Attack Detection and Response Employing a Global Data Store | |
| US10594714B2 (en) | User and entity behavioral analysis using an advanced cyber decision platform | |
| US10609079B2 (en) | Application of advanced cybersecurity threat mitigation to rogue devices, privilege escalation, and risk-based vulnerability and patch management | |
| US11218510B2 (en) | Advanced cybersecurity threat mitigation using software supply chain analysis | |
| US11240275B1 (en) | Platform and method for performing cybersecurity analyses employing an intelligence hub with a modular architecture | |
| US20220201042A1 (en) | Ai-driven defensive penetration test analysis and recommendation system | |
| US11552968B2 (en) | System and methods for detecting and mitigating golden SAML attacks against federated services | |
| US9178908B2 (en) | Protecting against the introduction of alien content | |
| CN113704767A (en) | Vulnerability scanning engine and vulnerability worksheet management fused vulnerability management system | |
| KR20180120157A (en) | Data set extraction based pattern matching | |
| EP3213207A1 (en) | A system and method for network intrusion detection of covert channels based on off-line network traffic | |
| US20210281599A1 (en) | Cyber Security System and Method Using Intelligent Agents | |
| Kitagawa et al. | AspFuzz: A state-aware protocol fuzzer based on application-layer protocols | |
| US20220210202A1 (en) | Advanced cybersecurity threat mitigation using software supply chain analysis | |
| CN112838951B (en) | Operation and maintenance method, device and system of terminal equipment and storage medium | |
| CN109800140A (en) | Method, apparatus, equipment and the medium of service alarm event analysis of causes | |
| CN112651021A (en) | Information security defense system based on big data | |
| Cruz et al. | Improving cyber-security awareness on industrial control systems: The cockpitci approach | |
| US20230060207A1 (en) | Systems and methods using network artificial intelligence to manage control plane security in real-time | |
| CN109254893B (en) | Service data auditing method, device, server and storage medium | |
| KR101233934B1 (en) | Integrated Intelligent Security Management System and Method | |
| CN113163012A (en) | Internet of things equipment management method and device based on block chain | |
| EP2873023B1 (en) | Technique for determining a malign or non-malign behavior of an executable file | |
| CN114024995A (en) | Internet of things terminal firmware safety analysis system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |